README.md in rack-saml-0.1.0 vs README.md in rack-saml-0.1.1

- old
+ new

@@ -8,28 +8,26 @@
 rack-saml uses external libraries to generate and validate SAML AuthnRequest/Response. It uses Rack functions to implement SAML Transport (HTTP Redirect Binding and HTTP POST Binding).
 
 ## Changes
 
 * version 0.0.2: SP session is supported using Rack::Session for Rack applications and ActionDispatch::Session for Rails applications. 
+* version 0.1.1: Update to fit newer ruby-saml.
 
 ## Limitations
 
 ### AuthnRequest Signing and Response Encryption
 
 Current implementation supports only Onelogin SAML assertion handler. It does not support to sign AuthnRequest and encrypt Response. So thus, the assertion encription function should be disabled at IdP side for rack-saml SPs.
 
 ## Getting Started
 
-### Installation
+### Setup Gemfile and Installation
 
-    % gem install rack-saml
-
-### Setup Gemfile
-
     % cd rails-app
     % vi Gemfile
     gem 'rack-saml'
+    % bundle install
 
 ### Setup Rack::Saml middleware
 
 Rack::Saml uses Rack::Session functions. You have to insert Rack::Session before Rack::Saml middleware. Rack::Session::Cookie is used in the following examples because it is easiest to setup and scale. You can use the other Rack::Session implementation. In a Rails application, it uses ActionDispatch::Session which is compatible with Rack::Session by default. So thus, you do not need to add Rack::Session in the Rails application.
 
@@ -101,9 +99,11 @@
 * *shib_app_id*: If you want to use the middleware as Shibboleth SP, you should specify an application ID. In the Shibboleth SP default configuration, 'default' is used as the application ID.
 * *shib_ds*: If you want to use the middleware as Shibboleth SP and use discovery service, specify the uri of the Discovery Service.
 * *saml_sp*: Set the SAML SP's entity ID
 * *sp_cert*: path to the SAML SP's certificate file, e.g. cert.pem (AuthnRequest Signing and Response Encryption are not supported yet)
 * *sp_key*: path to the SAML SP's key file, e.g. key.pem (AuthnRequest Signing and Response Encryption are not supported yet)
+* *allowed_clock_drift*: A clock margin (second) for checking NotBefore condition specified in a SAML Response (default: 0 seconds, 60 second may be good for local test).
+* *validation_error*: If set to true, a detailed reason of SAML response validation error will be shown on the browser (true/false)
 
 If not set explicitly, SAML SP's entity ID (saml_sp) is automatically generated from request URI and /rack-saml-sp (fixed path name). The Assertion Consumer Service URI is generated from request URI and protected_path.
 
     saml_sp_prefix = "#{request.scheme}://#{request.host}#{":#{request.port}" if request.port}#{request.script_name}"
     @config['saml_sp'] ||= "#{saml_sp_prefix}/rack-saml-sp"